Vulnerability Database

289,599

Total vulnerabilities in the database

CVE-2005-4499

The Downloadable RADIUS ACLs feature in Cisco PIX and VPN 3000 concentrators, when creating an ACL on the Cisco Secure Access Control Server (CS ACS), generates a random internal name for an ACL that is also used as a hidden user name and password, which allows remote attackers to gain privileges by sniffing the username from the cleartext portion of a RADIUS session, then using the password to log in to another device that uses CS ACS.

  • Published: Dec 22, 2005
  • Updated: Apr 13, 2023
  • CVE: CVE-2005-4499
  • Severity: High
  • Exploit:

CVSS v2:

  • Severity: High
  • Score: 7.5
  • AV:N/AC:L/Au:N/C:P/I:P/A:P

No CWE or OWASP classifications available.

Software From Fixed in
cisco / adaptive_security_appliance_software 7.0 7.0.x
cisco / adaptive_security_appliance_software 7.0(4) 7.0(4).x
cisco / adaptive_security_appliance_software 7.0.1.4 7.0.1.4.x
cisco / adaptive_security_appliance_software 7.0.4.3 7.0.4.3.x
cisco / vpn_3001_concentrator - -
cisco / vpn_3015_concentrator - -
cisco / vpn_3020_concentrator - -
cisco / vpn_3030_concentator - -
cisco / vpn_3060_concentrator - -
cisco / vpn_3080_concentrator - -
cisco / vpn_3000_concentrator_series_software 2.0 2.0.x
cisco / vpn_3000_concentrator_series_software 2.5.2.a 2.5.2.a.x
cisco / vpn_3000_concentrator_series_software 2.5.2.b 2.5.2.b.x
cisco / vpn_3000_concentrator_series_software 2.5.2.c 2.5.2.c.x
cisco / vpn_3000_concentrator_series_software 2.5.2.d 2.5.2.d.x
cisco / vpn_3000_concentrator_series_software 2.5.2.f 2.5.2.f.x
cisco / vpn_3000_concentrator_series_software 3.0 3.0.x
cisco / vpn_3000_concentrator_series_software 3.0.3.a 3.0.3.a.x
cisco / vpn_3000_concentrator_series_software 3.0.3.b 3.0.3.b.x
cisco / vpn_3000_concentrator_series_software 3.0.4 3.0.4.x
cisco / vpn_3000_concentrator_series_software 3.1 3.1.x
cisco / vpn_3000_concentrator_series_software 3.1(rel) 3.1(rel).x
cisco / vpn_3000_concentrator_series_software 3.1.1 3.1.1.x
cisco / vpn_3000_concentrator_series_software 3.1.2 3.1.2.x
cisco / vpn_3000_concentrator_series_software 3.1.4 3.1.4.x
cisco / vpn_3000_concentrator_series_software 3.5(rel) 3.5(rel).x
cisco / vpn_3000_concentrator_series_software 3.5.1 3.5.1.x
cisco / vpn_3000_concentrator_series_software 3.5.2 3.5.2.x
cisco / vpn_3000_concentrator_series_software 3.5.3 3.5.3.x
cisco / vpn_3000_concentrator_series_software 3.5.4 3.5.4.x
cisco / vpn_3000_concentrator_series_software 3.5.5 3.5.5.x
cisco / vpn_3000_concentrator_series_software 3.6 3.6.x
cisco / vpn_3000_concentrator_series_software 3.6.1 3.6.1.x
cisco / vpn_3000_concentrator_series_software 3.6.3 3.6.3.x
cisco / vpn_3000_concentrator_series_software 3.6.5 3.6.5.x
cisco / vpn_3000_concentrator_series_software 3.6.7 3.6.7.x
cisco / vpn_3000_concentrator_series_software 3.6.7.a 3.6.7.a.x
cisco / vpn_3000_concentrator_series_software 3.6.7.b 3.6.7.b.x
cisco / vpn_3000_concentrator_series_software 3.6.7.c 3.6.7.c.x
cisco / vpn_3000_concentrator_series_software 3.6.7.d 3.6.7.d.x
cisco / vpn_3000_concentrator_series_software 3.6.7.f 3.6.7.f.x
cisco / vpn_3000_concentrator_series_software 3.6.7d 3.6.7d.x
cisco / vpn_3000_concentrator_series_software 4.0 4.0.x
cisco / vpn_3000_concentrator_series_software 4.0.1 4.0.1.x
cisco / vpn_3000_concentrator_series_software 4.0.2 4.0.2.x
cisco / vpn_3000_concentrator_series_software 4.0.5.b 4.0.5.b.x
cisco / vpn_3000_concentrator_series_software 4.1.5.b 4.1.5.b.x
cisco / vpn_3000_concentrator_series_software 4.1.7.a 4.1.7.a.x
cisco / vpn_3000_concentrator_series_software 4.1.7.b 4.1.7.b.x
cisco / vpn_3000_concentrator_series_software 4.7.1 4.7.1.x
cisco / vpn_3000_concentrator_series_software 4.7.1.f 4.7.1.f.x
cisco / vpn_3005_concentrator_software 4.0.1 4.0.1.x
cisco / vpn_3030_concentator 4.7.1 4.7.1.x
cisco / vpn_3030_concentator 4.7.1.f 4.7.1.f.x
cisco / pix_asa_ids - -
cisco / pix_firewall 6.2.2_.111 6.2.2_.111.x
cisco / pix_firewall 6.2.3_(110) 6.2.3_(110).x
cisco / pix_firewall 6.3.3_(133) 6.3.3_(133).x
cisco / secure_access_control_server - -
cisco / secure_access_control_server 2.0 2.0.x
cisco / secure_access_control_server 2.1 2.1.x
cisco / secure_access_control_server 2.3 2.3.x
cisco / secure_access_control_server 2.3.5.1 2.3.5.1.x
cisco / secure_access_control_server 2.3.6.1 2.3.6.1.x
cisco / secure_access_control_server 2.4 2.4.x
cisco / secure_access_control_server 2.5 2.5.x
cisco / secure_access_control_server 2.6 2.6.x
cisco / secure_access_control_server 2.6.2 2.6.2.x
cisco / secure_access_control_server 2.6.3 2.6.3.x
cisco / secure_access_control_server 2.6.4 2.6.4.x
cisco / secure_access_control_server 2.42 2.42.x
cisco / secure_access_control_server 3.0 3.0.x
cisco / secure_access_control_server 3.0.1 3.0.1.x
cisco / secure_access_control_server 3.0.3 3.0.3.x
cisco / secure_access_control_server 3.1 3.1.x
cisco / secure_access_control_server 3.1.1 3.1.1.x
cisco / secure_access_control_server 3.2 3.2.x
cisco / secure_access_control_server 3.2(1) 3.2(1).x
cisco / secure_access_control_server 3.2(1.20) 3.2(1.20).x
cisco / secure_access_control_server 3.2(2) 3.2(2).x
cisco / secure_access_control_server 3.2(3) 3.2(3).x
cisco / secure_access_control_server 3.2.1 3.2.1.x
cisco / secure_access_control_server 3.2.2 3.2.2.x
cisco / secure_access_control_server 3.3 3.3.x
cisco / secure_access_control_server 3.3(1) 3.3(1).x
cisco / secure_access_control_server 3.3.1 3.3.1.x
cisco / secure_access_control_server 3.3.2 3.3.2.x
cisco / vpn_3002_hardware_client - -
cisco / pix_firewall_501 - -
cisco / pix_firewall_506 - -
cisco / pix_firewall_515 - -
cisco / pix_firewall_515e - -
cisco / pix_firewall_520 - -
cisco / pix_firewall_525 - -
cisco / pix_firewall_535 - -
cisco / pix_firewall - -
cisco / pix_firewall_software 2.7 2.7.x
cisco / pix_firewall_software 3.0 3.0.x
cisco / pix_firewall_software 3.1 3.1.x
cisco / pix_firewall_software 4.0 4.0.x
cisco / pix_firewall_software 4.1(6) 4.1(6).x
cisco / pix_firewall_software 4.1(6b) 4.1(6b).x
cisco / pix_firewall_software 4.2 4.2.x
cisco / pix_firewall_software 4.2(1) 4.2(1).x
cisco / pix_firewall_software 4.2(2) 4.2(2).x
cisco / pix_firewall_software 4.2(5) 4.2(5).x
cisco / pix_firewall_software 4.3 4.3.x
cisco / pix_firewall_software 4.4 4.4.x
cisco / pix_firewall_software 4.4(4) 4.4(4).x
cisco / pix_firewall_software 4.4(7.202) 4.4(7.202).x
cisco / pix_firewall_software 4.4(8) 4.4(8).x
cisco / pix_firewall_software 5.0 5.0.x
cisco / pix_firewall_software 5.1 5.1.x
cisco / pix_firewall_software 5.1(4) 5.1(4).x
cisco / pix_firewall_software 5.1(4.206) 5.1(4.206).x
cisco / pix_firewall_software 5.2 5.2.x
cisco / pix_firewall_software 5.2(1) 5.2(1).x
cisco / pix_firewall_software 5.2(2) 5.2(2).x
cisco / pix_firewall_software 5.2(3.210) 5.2(3.210).x
cisco / pix_firewall_software 5.2(5) 5.2(5).x
cisco / pix_firewall_software 5.2(6) 5.2(6).x
cisco / pix_firewall_software 5.2(7) 5.2(7).x
cisco / pix_firewall_software 5.2(9) 5.2(9).x
cisco / pix_firewall_software 5.3 5.3.x
cisco / pix_firewall_software 5.3(1) 5.3(1).x
cisco / pix_firewall_software 5.3(1.200) 5.3(1.200).x
cisco / pix_firewall_software 5.3(2) 5.3(2).x
cisco / pix_firewall_software 5.3(3) 5.3(3).x
cisco / pix_firewall_software 6.0 6.0.x
cisco / pix_firewall_software 6.0(1) 6.0(1).x
cisco / pix_firewall_software 6.0(2) 6.0(2).x
cisco / pix_firewall_software 6.0(3) 6.0(3).x
cisco / pix_firewall_software 6.0(4) 6.0(4).x
cisco / pix_firewall_software 6.0(4.101) 6.0(4.101).x
cisco / pix_firewall_software 6.1 6.1.x
cisco / pix_firewall_software 6.1(1) 6.1(1).x
cisco / pix_firewall_software 6.1(2) 6.1(2).x
cisco / pix_firewall_software 6.1(3) 6.1(3).x
cisco / pix_firewall_software 6.1(4) 6.1(4).x
cisco / pix_firewall_software 6.1(5) 6.1(5).x
cisco / pix_firewall_software 6.2 6.2.x
cisco / pix_firewall_software 6.2(1) 6.2(1).x
cisco / pix_firewall_software 6.2(2) 6.2(2).x
cisco / pix_firewall_software 6.2(3) 6.2(3).x
cisco / pix_firewall_software 6.2(3.100) 6.2(3.100).x
cisco / pix_firewall_software 6.3 6.3.x
cisco / pix_firewall_software 6.3(1) 6.3(1).x
cisco / pix_firewall_software 6.3(2) 6.3(2).x
cisco / pix_firewall_software 6.3(3) 6.3(3).x
cisco / pix_firewall_software 6.3(3.102) 6.3(3.102).x
cisco / pix_firewall_software 6.3(3.109) 6.3(3.109).x
cisco / pix_firewall_software 6.3(5) 6.3(5).x
cisco / pix_firewall_software 6.1.5(104) 6.1.5(104).x